$ rpki-client -vvf repo-rpki.idnic.net/repo/05f20b2e-a7a8-42fd-92f8-9496233b2c9e/0/3130332e3136382e34342e302f32342d3234203d3e20313432333037.roa File: 3130332e3136382e34342e302f32342d3234203d3e20313432333037.roa (raw, json) Hash identifier: JRJtiqNX0Dqv57Wpgdfcj6rSpq1ySM7l22ipO81fhZ0= Subject key identifier: 90:EB:B4:44:C2:D0:C6:BB:46:68:9E:24:71:15:F7:29:E3:FE:0C:B8 Certificate issuer: /CN=60AA01200D121EEEFE22CEFEE76B55720E8D9439 Certificate serial: 60242CE8AF83AF5A5FCA1B98A7CE11CDF5847C2B Authority key identifier: 60:AA:01:20:0D:12:1E:EE:FE:22:CE:FE:E7:6B:55:72:0E:8D:94:39 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/60AA01200D121EEEFE22CEFEE76B55720E8D9439.cer Subject info access: rsync://repo-rpki.idnic.net/repo/05f20b2e-a7a8-42fd-92f8-9496233b2c9e/0/3130332e3136382e34342e302f32342d3234203d3e20313432333037.roa Signing time: Thu 07 Dec 2023 10:00:00 +0000 ROA not before: Thu 07 Dec 2023 09:55:00 +0000 ROA not after: Thu 05 Dec 2024 10:00:00 +0000 asID: 142307 IP address blocks: 103.168.44.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/05f20b2e-a7a8-42fd-92f8-9496233b2c9e/0/60AA01200D121EEEFE22CEFEE76B55720E8D9439.crl rsync://repo-rpki.idnic.net/repo/05f20b2e-a7a8-42fd-92f8-9496233b2c9e/0/60AA01200D121EEEFE22CEFEE76B55720E8D9439.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/60AA01200D121EEEFE22CEFEE76B55720E8D9439.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 08:44:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:24:2c:e8:af:83:af:5a:5f:ca:1b:98:a7:ce:11:cd:f5:84:7c:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=60AA01200D121EEEFE22CEFEE76B55720E8D9439 Validity Not Before: Dec 7 09:55:00 2023 GMT Not After : Dec 5 10:00:00 2024 GMT Subject: CN=90EBB444C2D0C6BB46689E247115F729E3FE0CB8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:7e:f4:e9:c8:23:07:88:9f:53:29:6a:52:6a: 47:ac:3c:de:3b:82:d2:e2:b5:f6:f0:ca:31:76:ee: 90:16:18:63:48:c6:ef:59:cd:4d:8d:b8:ca:83:ba: 32:cc:70:e0:e2:62:8e:52:8e:51:80:0e:2b:9e:6e: b2:3d:0b:47:19:f9:58:1a:09:c1:fa:3d:d1:fe:e6: ed:b3:e1:26:a6:a5:df:f1:4e:0d:8e:8f:7c:c5:e7: 2e:ce:99:ee:83:b5:eb:7e:04:12:25:66:7a:68:4a: e2:69:13:6a:74:a8:d2:4f:e4:64:b9:4e:69:c0:a0: 60:05:38:98:85:60:0e:43:ff:a5:22:9d:12:6a:78: 22:72:0d:b9:03:05:6c:69:5d:47:15:55:a4:5a:15: 76:75:8a:b0:20:1c:2b:ee:7c:37:03:a2:af:56:df: df:ce:03:6c:ed:51:05:1a:67:4b:b0:01:31:de:0e: 62:07:41:4b:73:5b:99:ed:96:a8:bd:d9:28:f6:9c: 0d:7d:96:7f:80:fe:f2:a5:eb:fd:ba:78:9b:67:be: 01:57:29:bf:c4:43:6f:05:af:76:eb:c9:bd:10:1c: f0:1a:5d:52:e2:32:91:74:f5:1f:8f:ca:e9:d8:99: ee:03:38:fc:98:09:6e:40:f8:cf:4c:38:35:7b:20: e8:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:EB:B4:44:C2:D0:C6:BB:46:68:9E:24:71:15:F7:29:E3:FE:0C:B8 X509v3 Authority Key Identifier: keyid:60:AA:01:20:0D:12:1E:EE:FE:22:CE:FE:E7:6B:55:72:0E:8D:94:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/05f20b2e-a7a8-42fd-92f8-9496233b2c9e/0/60AA01200D121EEEFE22CEFEE76B55720E8D9439.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/60AA01200D121EEEFE22CEFEE76B55720E8D9439.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/05f20b2e-a7a8-42fd-92f8-9496233b2c9e/0/3130332e3136382e34342e302f32342d3234203d3e20313432333037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.168.44.0/24 Signature Algorithm: sha256WithRSAEncryption 59:e9:1c:c2:67:36:3d:20:b9:dd:ef:b2:f7:79:22:47:b9:0f: 09:30:df:65:03:76:6a:1d:c0:a4:bf:f5:1c:dd:f5:4f:5b:05: d7:b0:39:1d:b8:10:fb:d3:c4:0f:2e:51:4f:39:cb:fd:1f:83: 8c:23:11:b4:f7:a1:91:56:d5:84:64:ac:93:59:a2:d5:1e:9c: b8:e2:f8:c9:e6:31:01:b9:7d:c9:da:4a:71:25:7b:34:70:ba: 57:4d:75:19:ab:0f:98:29:bc:f5:8d:44:0d:a8:ae:95:8b:0d: 5b:28:33:04:52:de:d4:b4:1d:ad:13:fc:bb:1c:e2:d2:4c:02: 38:ff:74:39:36:c1:73:ae:8d:4a:4f:19:5a:8b:ff:17:1f:19: e7:54:3d:cd:11:18:0f:c8:ee:64:a9:e8:81:c4:5f:00:22:38: 28:15:6a:8b:19:27:00:21:23:cc:7a:b8:9d:a1:cc:ab:ea:c9: 66:da:c2:05:68:1b:9c:b2:17:76:1b:cd:03:2c:34:56:e0:4e: 21:e6:74:ee:42:37:12:13:15:3a:dd:96:0e:9f:75:c6:f1:16: d7:cd:db:fe:4d:74:f8:b9:d9:ba:0b:bb:b4:b6:4e:68:30:94: e8:83:59:5b:52:79:bf:70:d4:e0:ba:e5:ed:bf:07:79:27:3d: c0:dc:a1:83 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUYCQs6K+Dr1pfyhuYp84RzfWEfCswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjBBQTAxMjAwRDEyMUVFRUZFMjJDRUZFRTc2QjU1NzIw RThEOTQzOTAeFw0yMzEyMDcwOTU1MDBaFw0yNDEyMDUxMDAwMDBaMDMxMTAvBgNV BAMTKDkwRUJCNDQ0QzJEMEM2QkI0NjY4OUUyNDcxMTVGNzI5RTNGRTBDQjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKfvTpyCMHiJ9TKWpSakesPN47 gtLitfbwyjF27pAWGGNIxu9ZzU2NuMqDujLMcODiYo5SjlGADiuebrI9C0cZ+Vga CcH6PdH+5u2z4Sampd/xTg2Oj3zF5y7Ome6Dtet+BBIlZnpoSuJpE2p0qNJP5GS5 TmnAoGAFOJiFYA5D/6UinRJqeCJyDbkDBWxpXUcVVaRaFXZ1irAgHCvufDcDoq9W 39/OA2ztUQUaZ0uwATHeDmIHQUtzW5ntlqi92Sj2nA19ln+A/vKl6/26eJtnvgFX Kb/EQ28Fr3bryb0QHPAaXVLiMpF09R+PyunYme4DOPyYCW5A+M9MODV7IOhzAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUkOu0RMLQxrtGaJ4kcRX3KeP+DLgwHwYDVR0j BBgwFoAUYKoBIA0SHu7+Is7+52tVcg6NlDkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NWYyMGIyZS1hN2E4LTQyZmQtOTJmOC05NDk2MjMzYjJjOWUvMC82MEFBMDEyMDBE MTIxRUVFRkUyMkNFRkVFNzZCNTU3MjBFOEQ5NDM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjBBQTAxMjAwRDEyMUVFRUZFMjJDRUZFRTc2QjU1NzIwRThE OTQzOS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA1ZjIwYjJlLWE3YTgtNDJmZC05 MmY4LTk0OTYyMzNiMmM5ZS8wLzMxMzAzMzJlMzEzNjM4MmUzNDM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMyMzMzMDM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ6gsMA0GCSqG SIb3DQEBCwUAA4IBAQBZ6RzCZzY9ILnd77L3eSJHuQ8JMN9lA3ZqHcCkv/Uc3fVP WwXXsDkduBD708QPLlFPOcv9H4OMIxG096GRVtWEZKyTWaLVHpy44vjJ5jEBuX3J 2kpxJXs0cLpXTXUZqw+YKbz1jUQNqK6Viw1bKDMEUt7UtB2tE/y7HOLSTAI4/3Q5 NsFzro1KTxlai/8XHxnnVD3NERgPyO5kqeiBxF8AIjgoFWqLGScAISPMeridocyr 6slm2sIFaBucshd2G80DLDRW4E4h5nTuQjcSExU63ZYOn3XG8RbXzdv+TXT4udm6 C7u0tk5oMJTog1lbUnm/cNTguuXtvwd5Jz3A3KGD -----END CERTIFICATE-----Generated at Tue Apr 30 19:12:28 2024 by rpki-client on console-ams.rpki-client.org